From 1d9ff0e954605e3f9dfcbe9036a938ce28e2bd18 Mon Sep 17 00:00:00 2001
From: josh! <github@joshhighet.com>
Date: Wed, 20 Dec 2023 09:55:01 +1300
Subject: [PATCH] alphv

---
 groups.json                                   | 10 +++++
 parsers.py                                    |  2 +-
 ...lmjrpdmzle3rykajqc5xsj7j7ejksbpsa36ad.html | 44 ++++++++++++++-----
 ...gp46xzq3pw6zflomrghvxeuks6kklberrbmyd.html |  0
 4 files changed, 44 insertions(+), 12 deletions(-)
 create mode 100644 source/alphv-alphvuzxyxv6ylumd2ngp46xzq3pw6zflomrghvxeuks6kklberrbmyd.html
diff --git a/groups.json b/groups.json
index 5146ad4658a..7416629fd54 100644
--- a/groups.json
+++ b/groups.json
@@ -2442,6 +2442,16 @@
                 "updated": "2023-12-19 20:12:33.311567",
                 "lastscrape": "2023-12-19 20:12:33.311553",
                 "enabled": true
+            },
+            {
+                "fqdn": "alphvuzxyxv6ylumd2ngp46xzq3pw6zflomrghvxeuks6kklberrbmyd.onion",
+                "title": null,
+                "version": 3,
+                "slug": "http://alphvuzxyxv6ylumd2ngp46xzq3pw6zflomrghvxeuks6kklberrbmyd.onion/api/blog/brief/0/100",
+                "available": false,
+                "updated": null,
+                "lastscrape": "2021-05-01 00:00:00.000000",
+                "enabled": true
             }
         ],
         "profile": [
diff --git a/parsers.py b/parsers.py
index 3f282b0b291..f83e357b3d1 100644
--- a/parsers.py
+++ b/parsers.py
@@ -521,7 +521,7 @@ def alphv():
     # egrep -o 'class="mat-h2">([[:alnum:]]| |\.)+</h2>' source/alphv-*.html | cut -d '>' -f 2 | cut -d '<' -f 1
     # grep -o 'class="mat-h2">[^<>]*<\/h2>' source/alphv-*.html | cut -d '>' -f 2 | cut -d '<' -f 1 | sed -e 's/^ *//g' -e 's/[[:space:]]*$//' -e '/No articles here yet, check back later./d'
     parser = '''
-    jq -r '.items[].title' source/alphv-alphvmmm27*.html | sed -e 's/^ *//g' -e 's/[[:space:]]*$//'
+    jq -r '.items[].title' source/alphv-alphvuzxyxv6yl*.html | sed -e 's/^ *//g' -e 's/[[:space:]]*$//' || true
     '''
     posts = runshellcmd(parser)
     if len(posts) == 1:
diff --git a/source/alphv-alphvmmm27o3abo3r2mlmjrpdmzle3rykajqc5xsj7j7ejksbpsa36ad.html b/source/alphv-alphvmmm27o3abo3r2mlmjrpdmzle3rykajqc5xsj7j7ejksbpsa36ad.html
index 88c31ceba89..c769bc65837 100644
--- a/source/alphv-alphvmmm27o3abo3r2mlmjrpdmzle3rykajqc5xsj7j7ejksbpsa36ad.html
+++ b/source/alphv-alphvmmm27o3abo3r2mlmjrpdmzle3rykajqc5xsj7j7ejksbpsa36ad.html
@@ -1,11 +1,33 @@
-<?xml version="1.0" encoding="iso-8859-1"?>
-<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
-         "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
-<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
- <head>
-  <title>404 Not Found</title>
- </head>
- <body>
-  <h1>404 Not Found</h1>
- </body>
-</html>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+	<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+	<title>THIS WEBSITE HAS BEEN SEIZED</title>
+	<link rel="icon" type="image/x-icon" href="favicon.ico" >
+	<link rel="icon" type="image/png" sizes="32x32" href="favicon-32x32.png">
+	<link rel="icon" type="image/png" sizes="16x16" href="favicon-16x16.png">
+	<style type="text/css">
+		html, body { margin:0; height: 100%; font-family: 'DejaVu Sans', "Verdana", "Calibri", sans-serif; background-color: #0f0e17;background-repeat: no-repeat; background-size: contain; background-color: #0f0e17; background-position: center center; text-align: center;}
+        a {color: #003973}
+		.container { margin:0 auto; max-width: 1650px; height:100%; width:100%;min-width:892px;}
+        .header { background-color: #8c0000; color: #0f0e17; font-family: "Arial Black", sans-serif; font-size: 3em; font-weight: bolder; line-height: 2;}
+        .text { margin: 1em; line-height: 1.6; color: #ffffff; font-weight: bolder;}
+        .logo {width: 100%; height: auto;}
+        #h { font-size: 1.2em; padding: 0 20%;}
+	</style>
+</head>
+<body>
+	<div class="container">
+        <div class="header">THIS WEBSITE HAS BEEN SEIZED</div>
+        <div class="text" id="h">The Federal Bureau of Investigation seized this site as part of a coordinated law enforcement action taken against ALPHV Blackcat Ransomware
+        </div>
+        <div><img class="logo" src="logo.png" /></div>
+        <div class="text">This action has been taken in coordination with the United States Attorneyâs Office for the Southern District of Florida and the Computer Crime and Intellectual Property Section of the Department of Justice with substantial assistance from 
+            Europol and Zentrale Kriminalinspektion GÃ¶ttingen.
+            <br /><br /> If you have information about Blackcat, their affiliates, or activities, you may be eligible for a reward through the Department of Stateâs Rewards for Justice program. Information can be submitted through the following Tor-based tip line: <a href="http://he5dybnt7sr6cm32xt77pazmtm65flqy6irivtflruqfc5ep7eiodiad.onion"
+            >he5dybnt7sr6cm32xt77pazmtm65flqy6irivtflruqfc5ep7eiodiad.onion</a> (Tor browser required).
+            <br /><br /> For more information about rewards for information on foreign malicious cyber activity against U.S. critical infrastructure, visit <a href="https://rfj.tips/SDT55f">https://rfj.tips/SDT55f</a>.
+            </div>
+    </div>
+</body>
+</html>
diff --git a/source/alphv-alphvuzxyxv6ylumd2ngp46xzq3pw6zflomrghvxeuks6kklberrbmyd.html b/source/alphv-alphvuzxyxv6ylumd2ngp46xzq3pw6zflomrghvxeuks6kklberrbmyd.html
new file mode 100644
index 00000000000..e69de29bb2d
